Package "libmpg123-0"

Name:	libmpg123-0
Description:	MPEG layer 1/2/3 audio decoder (shared library)
Latest version:	1.25.13-1ubuntu0.1
Release:	focal (20.04)
Level:	security
Repository:	main
Head package:	mpg123
Homepage:	http://mpg123.org/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "libmpg123-0"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "libmpg123-0" in Focal

Repository	Area	Version
base	main	1.25.13-1
updates	main	1.25.13-1ubuntu0.1

Changelog

Version: 1.25.13-1ubuntu0.1 2024-11-06 19:07:01 UTC

mpg123 (1.25.13-1ubuntu0.1) focal-security; urgency=medium * SECURITY UPDATE: OOB write during PCM decoding - debian/patches/CVE-2024-10573.patch: don't prepare for actual frame data when there is none and separate header data into a struct, ensure late updating in frame in src/libmpg123/frame.c, src/libmpg123/frame.h, src/libmpg123/layer1.c, src/libmpg123/layer2.c, src/libmpg123/layer3.c, src/libmpg123/libmpg123.c, src/libmpg123/parse.c, src/libmpg123/getbits.h. - CVE-2024-10573 -- Marc Deslauriers <email address hidden> Mon, 04 Nov 2024 13:49:25 -0500

CVE-2024-10573

An out-of-bounds write flaw was found in mpg123 when handling crafted streams. When decoding PCM, the libmpg123 may write past the end of a heap-loca

About - Send Feedback to @ubuntu_updates

Package "libmpg123-0"

Links

Download "libmpg123-0"

Other versions of "libmpg123-0" in Focal

Changelog

Share this page

Bookmarks

Latest updates

security

PPA updates